Behavioral task
behavioral1
Sample
ae0452f1aa2ea30d8f6ef65e94b932ea_JaffaCakes118.exe
Resource
win7-20240705-en
Behavioral task
behavioral2
Sample
ae0452f1aa2ea30d8f6ef65e94b932ea_JaffaCakes118.exe
Resource
win10v2004-20240802-en
General
-
Target
ae0452f1aa2ea30d8f6ef65e94b932ea_JaffaCakes118
-
Size
5KB
-
MD5
ae0452f1aa2ea30d8f6ef65e94b932ea
-
SHA1
ab59aa0b36187287ca65644b1a143f144e129f54
-
SHA256
0fbdea90b73fdee1e7bba209358015027f2088dda51e2978b751feee73bf3afa
-
SHA512
83389b6b19f1e6f5daa8424729a8ca2576cebe3a9ec0c0929dd18b0a5535ef7f05dbfb3940a5508dca7cf9159bd39d4c08d4abd7d2cfc0a7756f490a729dbcab
-
SSDEEP
96:Xe7uyqyvke+Vol7hoVI4pqodxdGlIDd9uBz6LoNaBJ1ctnqr4pnqcwjmhaI:fybkx87ho1pTfGlI/ux6LoaEqriLh
Malware Config
Signatures
-
resource yara_rule sample upx -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource ae0452f1aa2ea30d8f6ef65e94b932ea_JaffaCakes118
Files
-
ae0452f1aa2ea30d8f6ef65e94b932ea_JaffaCakes118.exe windows:4 windows x86 arch:x86
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_NO_SEH
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Sections
UPX0 Size: - Virtual size: 1.3MB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 46KB - Virtual size: 48KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX2 Size: 1KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE